| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-38548 | Veeam ONE 安全漏洞 | Veeam | One | 超危 | - | 2023-11-07 06:17:32 | Deep Dive |
| CVE-2023-38547 | Veeam ONE 安全漏洞 | Veeam | One | 超危 | - | 2023-11-07 06:17:32 | Deep Dive |
| CVE-2023-20886 | VMware Workspace ONE 输入验证错误漏洞 | - | VMware Workspace ONE UEM Console | High | 8.8 | 2023-10-31 20:44:51 | Deep Dive |
| CVE-2022-4954 | Waiting: One-click countdowns <= 0.6.2 - Authenticated (Administrator+) Cross-Site Scripting | pluginbuilders | Waiting: One-click countdowns | Medium | 5.5 | 2023-10-20 06:35:15 | Deep Dive |
| CVE-2023-45063 | WordPress AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF) | ReCorp | AI Content Writing Assistant (Content Writer, GPT 3 & 4, ChatGPT, Image Generator) All in One | Medium | 4.3 | 2023-10-12 12:41:26 | Deep Dive |
| CVE-2023-41365 | Information Disclosure vulnerability in SAP Business One (B1i) | SAP_SE | SAP Business One (B1i) | Medium | 4.3 | 2023-10-10 01:35:58 | Deep Dive |
| CVE-2023-37991 | WordPress WP Emoji One Plugin <= 0.6.0 is vulnerable to Cross Site Request Forgery (CSRF) | Monchito.net | WP Emoji One | Medium | 4.3 | 2023-10-03 09:39:41 | Deep Dive |
| CVE-2023-4003 | One Identity Password Manager version 5.9.7.1 - Unauthenticated physical access privilege escalation | One | One | High | 7.6 | 2023-09-27 12:11:23 | Deep Dive |
| CVE-2023-3547 | All in One B2B for WooCommerce <= 1.0.3 - Multiple CSRF | Unknown | All in One B2B for WooCommerce | 高危 | - | 2023-09-25 15:56:56 | Deep Dive |
| CVE-2023-41179 | Trend Micro Apex One 安全漏洞 | Trend Micro, Inc. | Trend Micro Apex One | 高危 | - | 2023-09-19 13:44:58 | Deep Dive |
| CVE-2023-28831 | SIMATIC Cloud Connect 输入验证错误漏洞 | Siemens | SIMATIC BRAUMAT | High | 7.5 | 2023-09-12 09:32:06 | Deep Dive |
| CVE-2023-38476 | WordPress Client Portal : SuiteDash Direct Login Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS) | SuiteDash :: ONE Dashboard® | Client Portal : SuiteDash Direct Login | Medium | 5.9 | 2023-09-03 11:43:04 | Deep Dive |
| CVE-2023-4299 | Digi RealPort Protocol Use of Password Hash Instead of Password for Authentication | Digi International | Digi RealPort | Critical | 9.0 | 2023-08-31 20:45:44 | Deep Dive |
| CVE-2023-4000 | Waiting: One-click countdowns <= 0.6.2 - Cross-Site Request Forgery | pluginbuilders | Waiting: One-click countdowns | Medium | 6.3 | 2023-08-31 05:33:12 | Deep Dive |
| CVE-2023-3999 | Waiting: One-click countdowns <= 0.6.2 - Missing Authorization | pluginbuilders | Waiting: One-click countdowns | Medium | 6.3 | 2023-08-31 05:33:05 | Deep Dive |
| CVE-2023-39437 | Cross-Site Scripting (XSS) vulnerability in SAP Business One | SAP_SE | SAP Business One | High | 7.6 | 2023-08-08 00:48:39 | Deep Dive |
| CVE-2023-37487 | Security misconfiguration vulnerability in SAP Business One (Service Layer) | SAP_SE | SAP Business One (Service Layer) | Medium | 5.3 | 2023-08-08 00:42:16 | Deep Dive |
| CVE-2023-33993 | SQL Injection vulnerability in SAP Business One B1i Layer | SAP_SE | SAP Business One (B1i Layer) | High | 7.1 | 2023-08-08 00:35:52 | Deep Dive |
| CVE-2023-3248 | All-in-one Floating Contact Form < 2.1.2 - Admin+ Stored Cross-Site Scripting | Unknown | All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs | 中危 | - | 2023-07-24 10:20:25 | Deep Dive |
| CVE-2023-2493 | All In One Redirection < 2.2.0 - Admin+ SQLi | Unknown | All In One Redirection | 高危 | - | 2023-07-10 12:40:10 | Deep Dive |